Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance, used when allocating guest memory to ensure any writes (such as the ones during scrubbing) have reached memory before handing over the page to a guest. Unfortunately, the arithmetics in the helpers can overflow and would then result to skip the cache cleaning/invalidation. Therefore there is no guarantee when all the writes will reach the memory.

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available.

  - Arm provides multiple helpers to clean & invalidate the cache for a given region. This is, for instance,     used when allocating guest memory to ensure any writes (such as the ones during scrubbing) have reached     memory before handing over the page to a guest. Unfortunately, the arithmetics in the helpers can overflow     and would then result to skip the cache cleaning/invalidation. Therefore there is no guarantee when all     the writes will reach the memory. (CVE-2023-34321)

Note that Nessus relies on the presence of the package as reported by the vendor.

The remote host is affected by the vulnerability described in GLSA-202409-10 (Xen: Multiple Vulnerabilities)

    Multiple vulnerabilities have been discovered in Xen. Please review the CVE identifiers referenced below     for details.

Tenable has extracted the preceding description block directly from the Gentoo Linux security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 39 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-35d2ad2328 advisory.

    arm32: The cache may not be properly cleaned/invalidated [XSA-437,     CVE-2023-34321]     top-level shadow reference dropped too early for 64-bit PV guests     [XSA-438, CVE-2023-34322]     x86/AMD: Divide speculative information leak [XSA-439, CVE-2023-20588]

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 37 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-948136565a advisory.

    arm32: The cache may not be properly cleaned/invalidated [XSA-437,     CVE-2023-34321]     top-level shadow reference dropped too early for 64-bit PV guests     [XSA-438, CVE-2023-34322]     x86/AMD: Divide speculative information leak [XSA-439, CVE-2023-20588]

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The remote Fedora 38 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2023-4125279976 advisory.

    arm32: The cache may not be properly cleaned/invalidated [XSA-437,     CVE-2023-34321]     top-level shadow reference dropped too early for 64-bit PV guests     [XSA-438, CVE-2023-34322]     x86/AMD: Divide speculative information leak [XSA-439, CVE-2023-20588]

Tenable has extracted the preceding description block directly from the Fedora security advisory.

Note that Nessus has not tested for these issues but has instead relied only on the application's self-reported version number.

The Arm cache may not be properly cleaned or invalidated due to an arithmetic overflow flaw.

Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version   number.

ID	Name	Product	Family	Severity
226296	Linux Distros Unpatched Vulnerability : CVE-2023-34321	Nessus	Misc.	low
207559	GLSA-202409-10 : Xen: Multiple Vulnerabilities	Nessus	Gentoo Local Security Checks	high
185221	Fedora 39 : xen (2023-35d2ad2328)	Nessus	Fedora Local Security Checks	high
182947	Fedora 37 : xen (2023-948136565a)	Nessus	Fedora Local Security Checks	high
182399	Fedora 38 : xen (2023-4125279976)	Nessus	Fedora Local Security Checks	high
180575	Xen arm32: The cache may not be properly cleaned/invalidated (XSA-437)	Nessus	Misc.	low

Detections

Analytics

CVE-2023-34321

low

Tenable Plugins

low

high

high

high

high

low